CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by vendor Wikimedia Subscriptions

Filtered by product Mediawiki-score Extension Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-39936	1 Wikimedia	1 Mediawiki-score Extension	2026-04-09	N/A
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundation Mediawiki - Score Extension allows Cross-Site Scripting (XSS). The issue has been remediated on the `master` branch, and in the release branches for MediaWiki versions 1.43, 1.44, and 1.45.

Page 1 of 1.